https://bugzilla.wikimedia.org/show_bug.cgi?id=15472
--- Comment #2 from Dieudonné Dard <[email protected]> 2011-01-10 21:17:21 UTC --- (In reply to comment #1) > Still current, got a complaint on internal.wikimedia.org and confirmed. > > Culprit seems to be a bogus permission check in FeedUtils::formatDiffRow(): > > //NOTE: Check permissions for anonymous users, not current user. > // No "privileged" version should end up in the cache. > // Most feed readers will not log in anway. > $anon = new User(); > $accErrors = $title->getUserPermissionsErrors( 'read', $anon, true ); > > On a fully-restricted site, anonymous viewers wouldn't be able to reach a feed > at all, so this makes no sense -- you just end up with a feed that's just > missing content for all the people who *can* read it. > > This might make sense on a partially-restricted site, where the feed is > accessible but some pages can't be read by anon visitors... in which case > you'd > still be exposing various edit information that you likely ought not to. It's good to feel understood :-) Any chance to see an evolution about that ? Could an existing extension help turn around the problem ? -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
